Category: The Web of Vulnerabilities

Software on smartphones, computers, and commercial equipment is rife with defects. While tech companies regularly update products to fix known vulnerabilities, these flaws give attackers new ways of infiltrating emails, corporate networks, or critical systems.

It’s not just malicious hackers who use vulnerabilities. Cybersecurity firms, tech companies, law enforcement agencies, defense contractors, and government agencies take advantage of them, too. Security flaws may give federal agents ways to infiltrate terrorists’ digital communications or track criminals’ smartphones. They can also be deployed to spy on journalists, activists, and dissidents. And because vulnerabilities are so valuable, the hunt for them is driving a multimillion dollar industry.

In a joint project between The Christian Science Monitor’s Passcode team and the Medill School of Journalism, we explore the growing arms race to discover software vulnerabilities – and what it means for national security and everyone’s digital privacy and safety.

Cybersecurity The Web of Vulnerabilities

The unlikely suspects: Spies in the home

By Eunice Lee on February 10, 2017February 8, 2017 hacking

The democratization of hacking tools is making it cheaper and easier than ever for families and loved ones to spy on each other.

Cybersecurity The Web of Vulnerabilities

The deciders: How Washington evaluates vulnerabilities

By Darby Hopper and Dan Waldman on February 10, 2017February 8, 2017 cybersecurity, zero-day

It’s unknown how many zero-day vulnerabilities the NSA keeps for its digital espionage operations.

The Web of Vulnerabilities

The victims: The human cost of surveillance

By Rishika Dugyala and Vishakha Darbha on February 10, 2017February 8, 2017 cybersurveillance

“The first time I saw it, I was not 100 percent sure that somebody had hacked into my computer … Freaky things happen, you’ve seen basically computers act up.”

Cybersecurity The Web of Vulnerabilities

The best defense: How to improve your digital security

By Anna Waters on February 10, 2017February 8, 2017 apple, cybersecurity, duckduckgo, personal tech

Tech companies are working hard to protect their customers from attackers – whether they are snooping governments or criminals looking to steal personal information.

Cybersecurity The Web of Vulnerabilities

What is a zero-day? (VIDEO)

By Fallon Schlossman on February 10, 2017February 8, 2017 zero-day

Melanie Teplinsky, cybersecurity expert and adjunct professor at American University’s Washington College of Law, explains the lifecycle of a zero day: A previously unknown vulnerability in software that could allow hackers access to people’s data without them knowing.

CyLab at Carnegie Mellon University / Facebook

International Relations The Web of Vulnerabilities

Players in the Surveillance Industry

By Ross Krasner and David Gernon on February 10, 2017February 8, 2017 Booz Allen, Carnegie Mellon, surveillance

These organizations are big names in cybersecurity and surveillance.

Cybersecurity The Web of Vulnerabilities

Sen. Ron Wyden: A voice on digital privacy issues

By Isabella Alvarenga and Kelly Norris on February 10, 2017February 8, 2017 digital privacy, Ron Wyden

On Capitol Hill, Wyden is one of most active voices on digital privacy issues, specifically when it comes to protecting civil liberties. First elected to the Senate in 1996, the Democratic senator from Oregon has served on the Select Committee on Intelligence and worked on bills to reduce and regulate government surveillance and hacking.

The Web of Vulnerabilities

The unlikely political alliance fighting government surveillance

By Andrew Merica on February 10, 2017February 14, 2017 National Security Agency

There’s a common enemy uniting far left and right wing groups: Government surveillance.

Cybersecurity The Web of Vulnerabilities

New FBI cybersurveillance power causes civil liberties alarms

By Lauren Bally and Benjamin Din on February 10, 2017February 8, 2017 FBI

Over the past several years, FBI Director James Comey has turned attention onto an issue where the increasingly common use of encryption technology prevents the federal agency from accessing information it needs, even with a court order.

The Web of Vulnerabilities

Police worldwide eye Baltimore’s vast surveillance complex

By David Fishman and Michelle Kim on December 22, 2016 cybersecurity, passcode

Baltimore is at the leading edge of deploying surveillance technologies. Even though its practices have raised questions about civil liberties and privacy, law enforcement agencies around the world see it as a test bed for the future of policing.